I recently installed cluebringer per the instructions, i have it integrated
with postfix via master.cf:
submission inet n - - - - smtpd
-o smtpd_recipient_restrictions=check_policy_service,inet:127.0.0.1:10031
,permit_sasl_authenticated,reject
-o smtpd_end_of_data_restrictions=check_policy_service,inet:
127.0.0.1:10031
It is adding records to session_tracking, but not quotas_tracking. I have
only one active policy, for any any:
mysql> select * from policies where Disabled=0;
+----+-----------------------------+----------+-----------------+----------+
| ID | Name | Priority | Description | Disabled |
+----+-----------------------------+----------+-----------------+----------+
| 13 | mail_auth_not_localhost_out | 4 | smtp_auth_users | 0
|
+----+-----------------------------+----------+-----------------+----------+
1 row in set (0.00 sec)
+----+----------+--------+-------------+---------+----------+
| ID | PolicyID | Source | Destination | Comment | Disabled |
+----+----------+--------+-------------+---------+----------+
| 12 | 13 | any | any | | 0 |
+----+----------+--------+-------------+---------+----------+
1 row in set (0.00 sec)
and one quota:
mysql> select * from quotas;
+----+----------+-----------------+--------------+--------+---------+------+---------+----------+
| ID | PolicyID | Name | Track | Period | Verdict | Data
| Comment | Disabled |
+----+----------+-----------------+--------------+--------+---------+------+---------+----------+
| 5 | 13 | sasl_auth_users | SASLUsername | 3600 | REJECT |
| | 0 |
+----+----------+-----------------+--------------+--------+---------+------+---------+----------+
1 row in set (0.00 sec)
mysql> select * from quotas_limits;
+----+----------+-----------------------+--------------+---------+----------+
| ID | QuotasID | Type | CounterLimit | Comment | Disabled
|
+----+----------+-----------------------+--------------+---------+----------+
| 5 | 2 | MessageCount | 12 | NULL | 0
|
| 6 | 5 | MessageCount | 1 | | 1
|
| 8 | 5 | MessageCumulativeSize | 1 | | 1
|
+----+----------+-----------------------+--------------+---------+----------+
3 rows in set (0.00 sec)
[2014/04/23-11:03:09 - 13450] [CORE] INFO: 2014/04/23-11:03:09 CONNECT TCP
Peer: "127.0.0.1:50190" Local: "127.0.0.1:10031"
[2014/04/23-11:03:09 - 13447] [CORE] INFO: Starting "1" children
[2014/04/23-11:03:09 - 13450] [TRACKING] DEBUG: No session tracking data
exists for request: $VAR1 = {
'ccert_fingerprint' => '',
'sasl_method' => 'LOGIN',
'sasl_sender' => '',
'size' => 0,
'_timestamp' => 1398276189,
'helo_name' => 'me',
'reverse_client_name' => 'unknown',
'queue_id' => '',
'encryption_cipher' => 'AES128-SHA',
'encryption_protocol' => 'TLSv1',
'etrn_domain' => '',
'ccert_subject' => '',
'request' => 'smtpd_access_policy',
'protocol_state' => 'RCPT',
'stress' => '',
'recipient' => '[email protected]',
'sasl_username' => '[email protected]',
'instance' => '3494.5358005d.6ab98.0',
'protocol_name' => 'ESMTP',
'encryption_keysize' => '128',
'recipient_count' => '0',
'ccert_issuer' => '',
'sender' => '[email protected]',
'client_name' => 'unknown',
'client_address' => '10.0.0.17',
'_protocol_transport' => 'Postfix'
};
[2014/04/23-11:03:09 - 13450] [TRACKING] DEBUG: Added session tracking
information for: $VAR1 = {
'ccert_fingerprint' => '',
'sasl_method' => 'LOGIN',
'sasl_sender' => '',
'size' => 0,
'_timestamp' => 1398276189,
'helo_name' => 'me',
'reverse_client_name' => 'unknown',
'queue_id' => '',
'encryption_cipher' => 'AES128-SHA',
'encryption_protocol' => 'TLSv1',
'etrn_domain' => '',
'ccert_subject' => '',
'request' => 'smtpd_access_policy',
'protocol_state' => 'RCPT',
'stress' => '',
'recipient' => '[email protected]',
'sasl_username' => '[email protected]',
'instance' => '3494.5358005d.6ab98.0',
'protocol_name' => 'ESMTP',
'encryption_keysize' => '128',
'recipient_count' => '0',
'ccert_issuer' => '',
'sender' => '[email protected]',
'client_name' => 'unknown',
'client_address' => '10.0.0.17',
'_protocol_transport' => 'Postfix'
};
[2014/04/23-11:03:09 - 13466] [CORE] DEBUG: Child Preforked (13466)
[2014/04/23-11:03:09 - 13466] [CBPOLICYD] DEBUG: Starting up caching engine
[2014/04/23-11:03:09 - 13450] [TRACKING] DEBUG: Protocol state is 'RCPT',
resolving policy...
[2014/04/23-11:03:09 - 13450] [POLICIES] DEBUG: Going to resolve session
data into policy: $VAR1 = {
'Recipient' => '[email protected]',
'SASLUsername' => '[email protected]',
'QueueID' => '',
'RecipientData' => '',
'Instance' => '3494.5358005d.6ab98.0',
'EncryptionCipher' => 'AES128-SHA',
'Size' => '0',
'EncryptionKeySize' => '128',
'EncryptionProtocol' => 'TLSv1',
'Helo' => 'me',
'ClientAddress' => '10.0.0.17',
'ClientName' => 'unknown',
'Sender' => '[email protected]',
'SASLSender' => '',
'Protocol' => 'ESMTP',
'ClientReverseName' => 'unknown',
'SASLMethod' => 'LOGIN'
};
[2014/04/23-11:03:09 - 13450] [POLICIES] DEBUG: Found policy member with ID
'12' in policy 'mail_auth_not_localhost_out'
[2014/04/23-11:03:09 - 13450] [POLICIES] DEBUG:
[ID:12/Name:mail_auth_not_localhost_out]: Source not defined or 'any',
explicit match: matched=1
[2014/04/23-11:03:09 - 13450] [POLICIES] INFO:
[ID:12/Name:mail_auth_not_localhost_out]: Source matching result: matched=1
[2014/04/23-11:03:09 - 13450] [POLICIES] DEBUG:
[ID:12/Name:mail_auth_not_localhost_out]: Destination not defined or 'any',
explicit match: matched=1
[2014/04/23-11:03:09 - 13450] [POLICIES] INFO:
[ID:12/Name:mail_auth_not_localhost_out]: Destination matching result:
matched=1
[2014/04/23-11:03:09 - 13450] [POLICIES] DEBUG: END RESULT: prio=4 =>
policy ids: 13
[2014/04/23-11:03:09 - 13450] [TRACKING] DEBUG: Policy resolved into: $VAR1
= {
'4' => [
'13'
]
};
[2014/04/23-11:03:09 - 13450] [TRACKING] DEBUG: Request translated into
session data: $VAR1 = {
'Recipient' => '[email protected]',
'SASLUsername' => '[email protected]',
'QueueID' => '',
'RecipientData' => '',
'Instance' => '3494.5358005d.6ab98.0',
'EncryptionCipher' => 'AES128-SHA',
'Size' => '0',
'EncryptionKeySize' => '128',
'ParsedClientAddress' => {
'Broadcast_Long' => NNNNNNNN,
'Network' => '10.0.0.17',
'IP_Long' => NNNNNNNN,
'Broadcast' => '10.0.0.17',
'IP' => '10.0.0.17',
'Mask_Long' => NNNNNNNN,
'Network_Long' => NNNNNNNN
},
'ProtocolTransport' => 'Postfix',
'EncryptionProtocol' => 'TLSv1',
'Helo' => 'me',
'ClientAddress' => '10.0.0.17',
'ClientName' => 'unknown',
'Sender' => '[email protected]',
'SASLSender' => '',
'Timestamp' => 1398276189,
'ProtocolState' => 'RCPT',
'Policy' => {
'4' => [
'13'
]
},
'Protocol' => 'ESMTP',
'ClientReverseName' => 'unknown',
'SASLMethod' => 'LOGIN'
};
[2014/04/23-11:03:09 - 13450] [CBPOLICYD] DEBUG: Got request, running
modules...
[2014/04/23-11:03:09 - 13450] [CBPOLICYD] INFO: Got request #1
[2014/04/23-11:03:09 - 13450] [CBPOLICYD] DEBUG: Running module: Quotas
Plugin
[2014/04/23-11:03:09 - 13450] [CBPOLICYD] DEBUG: Module 'Quotas Plugin'
returned CBP_CONTINUE
[2014/04/23-11:03:09 - 13450] [CBPOLICYD] DEBUG: Done with modules
[2014/04/23-11:03:09 - 13450] [TRACKING] DEBUG: Protocol state is
'END-OF-MESSAGE', decoding policy...
[2014/04/23-11:03:09 - 13450] [TRACKING] DEBUG: Decoded into: $VAR1 = {
'[email protected]' => {
'4' => [
'13'
]
}
};
[2014/04/23-11:03:09 - 13450] [TRACKING] DEBUG: Request translated into
session data: $VAR1 = {
'SASLUsername' => '[email protected]',
'QueueID' => '83AACAF81CD',
'RecipientData' => '/<[email protected]>#4=13;',
'EncryptionCipher' => 'AES128-SHA',
'Instance' => '3494.5358005d.6ab98.0',
'Size' => '3',
'EncryptionKeySize' => '128',
'ParsedClientAddress' => {
'Broadcast_Long' => NNNNNNNN,
'Network' => '10.0.0.17',
'IP_Long' => NNNNNNNN,
'Broadcast' => '10.0.0.17',
'IP' => '10.0.0.17',
'Mask_Long' => NNNNNNNN,
'Network_Long' => NNNNNNNN
},
'ProtocolTransport' => 'Postfix',
'EncryptionProtocol' => 'TLSv1',
'Helo' => 'me',
'ClientAddress' => '10.0.0.17',
'ClientName' => 'unknown',
'Sender' => '[email protected]',
'SASLSender' => '',
'Timestamp' => 1398276189,
'ProtocolState' => 'END-OF-MESSAGE',
'_Recipient_To_Policy' => {
'[email protected]' => {
'4' => [
'13'
]
}
},
'Protocol' => 'ESMTP',
'ClientReverseName' => 'unknown',
'SASLMethod' => 'LOGIN'
};
[2014/04/23-11:03:09 - 13450] [CBPOLICYD] DEBUG: Got request, running
modules...
[2014/04/23-11:03:09 - 13450] [CBPOLICYD] INFO: Got request #2 (pipelined)
[2014/04/23-11:03:09 - 13450] [CBPOLICYD] DEBUG: Running module: Quotas
Plugin
[2014/04/23-11:03:09 - 13450] [CBPOLICYD] DEBUG: Module 'Quotas Plugin'
returned CBP_CONTINUE
[2014/04/23-11:03:09 - 13450] [CBPOLICYD] DEBUG: Done with modules
[2014/04/23-11:04:52 - 13450] [CBPOLICYD] WARNING: Client closed connection
=> Peer: 127.0.0.1:50190, Local: 127.0.0.1:10031
[2014/04/23-11:04:52 - 13447] [CORE] INFO: Killing "1" children
[2014/04/23-11:04:52 - 13451] [CBPOLICYD] DEBUG: Shutting down caching
engine (13451)
What am I missing?
TIA
-Chris
_______________________________________________
Users mailing list
[email protected]
http://lists.policyd.org/mailman/listinfo/users_lists.policyd.org
